Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/UQlCWmFSpy5Fbbqod1N9FWI8F3s.roa
File: UQlCWmFSpy5Fbbqod1N9FWI8F3s.roa (raw, json)
Hash identifier: jYwQN6OJ+2LKOyrjlUQpL5y48DHTwoCsrqdNFCXKTQI=
Subject key identifier: 51:09:42:5A:61:52:A7:2E:45:6D:BA:A8:77:53:7D:15:62:3C:17:7B
Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Certificate serial: F9
Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/UQlCWmFSpy5Fbbqod1N9FWI8F3s.roa
Signing time: Tue 21 Feb 2023 02:32:29 +0000
ROA not before: Tue 21 Feb 2023 02:32:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38047
IP address blocks: 2400:5ea0:852a::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 249 (0xf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Validity
Not Before: Feb 21 02:32:29 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5109425A6152A72E456DBAA877537D15623C177B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:27:98:eb:05:b2:be:3d:a2:14:f1:ec:06:b8:
b7:9c:7c:b8:69:9f:17:8d:f0:85:b2:3f:ea:ce:3d:
9e:54:e0:94:55:8c:35:29:7a:9e:16:e4:b8:74:e5:
09:4f:91:37:c1:df:89:5c:d1:1c:a8:7e:f2:33:8a:
8f:e6:7d:16:16:76:30:5a:37:e8:78:5c:71:99:ba:
5c:de:74:ef:1c:c5:de:63:b5:85:26:c2:71:73:6a:
1c:f1:94:c8:86:88:ca:fd:f0:fd:6a:a0:47:48:d0:
f6:fc:47:0e:47:50:0c:20:f0:5c:c4:7c:71:6a:c5:
03:01:a8:33:43:3d:5b:76:c7:15:c8:f5:76:5a:cb:
28:fd:79:c8:4d:eb:9b:db:c8:db:98:50:cb:7c:ba:
66:e4:b8:88:a9:25:72:6c:f7:9c:08:b8:7f:ed:77:
3f:2a:59:2a:63:22:86:c5:b5:0a:6c:4d:ff:8c:97:
b3:8b:42:32:1c:0d:7e:6c:b3:93:a3:57:e9:43:62:
2d:1c:6c:ad:6f:db:df:61:8c:7c:03:e3:cc:23:91:
08:72:91:b4:1f:8b:39:78:79:c9:8f:44:6d:4f:72:
c3:95:2b:1d:dd:3e:e6:4e:d7:85:af:4e:94:60:d1:
2c:57:bb:e5:6a:c7:e5:fe:2b:73:dc:31:5b:76:63:
6a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:09:42:5A:61:52:A7:2E:45:6D:BA:A8:77:53:7D:15:62:3C:17:7B
X509v3 Authority Key Identifier:
keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/UQlCWmFSpy5Fbbqod1N9FWI8F3s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:5ea0:852a::/48
Signature Algorithm: sha256WithRSAEncryption
16:cc:95:38:60:bf:ea:4b:ae:21:bc:25:c6:41:d0:80:45:03:
f0:09:8a:4d:29:0e:64:d6:8a:79:31:fc:8d:53:eb:94:a6:67:
d6:99:e8:65:aa:bf:f2:6e:bf:f8:c3:13:20:b0:82:25:78:8e:
60:9b:8e:de:97:b7:9a:69:41:db:31:17:aa:79:69:f9:ed:18:
6a:0a:e3:54:f5:9a:14:2b:ff:66:0b:77:ca:2e:55:ba:74:64:
91:33:cb:c6:03:a8:a7:36:5d:da:91:23:b6:a5:9a:c7:ce:a3:
ea:04:c3:0a:5e:ec:d5:23:6c:89:a3:98:75:3f:bc:2d:02:89:
a5:66:2c:6c:e6:35:1d:fc:ea:48:c8:fa:55:a6:7f:c2:6b:e8:
6b:1f:3e:b4:21:80:f8:7d:7f:2c:a9:eb:6b:33:a5:f3:9f:8e:
fd:97:83:d6:ed:e5:4c:db:7d:0c:f7:7f:e4:ab:4f:04:00:85:
6f:f0:64:c3:a7:94:e7:da:a7:47:24:2b:b4:dd:29:44:77:7f:
81:f2:3d:0c:cd:79:a5:fc:20:3c:c7:5d:c8:29:8d:29:16:6c:
db:08:15:37:06:f0:1c:25:43:e9:b6:b6:58:a0:73:0c:df:3a:
49:e8:66:78:98:6f:6c:f1:93:88:4d:43:73:3a:ed:8a:c4:a0:
ff:ac:4e:a3
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux
N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yMzAyMjEw
MjMyMjlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDUxMDk0MjVBNjE1MkE3
MkU0NTZEQkFBODc3NTM3RDE1NjIzQzE3N0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKJ5jrBbK+PaIU8ewGuLecfLhpnxeN8IWyP+rOPZ5U4JRVjDUp
ep4W5Lh05QlPkTfB34lc0RyofvIzio/mfRYWdjBaN+h4XHGZulzedO8cxd5jtYUm
wnFzahzxlMiGiMr98P1qoEdI0Pb8Rw5HUAwg8FzEfHFqxQMBqDNDPVt2xxXI9XZa
yyj9echN65vbyNuYUMt8umbkuIipJXJs95wIuH/tdz8qWSpjIobFtQpsTf+Ml7OL
QjIcDX5ss5OjV+lDYi0cbK1v299hjHwD48wjkQhykbQfizl4ecmPRG1PcsOVKx3d
PuZO14WvTpRg0SxXu+Vqx+X+K3PcMVt2Y2rPAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUUQlCWmFSpy5Fbbqod1N9FWI8F3swHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY
e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI
L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNIL1VRbENXbUZTcHk1RmJicW9k
MU45RldJOEYzcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
AF6ghSowDQYJKoZIhvcNAQELBQADggEBABbMlThgv+pLriG8JcZB0IBFA/AJik0p
DmTWinkx/I1T65SmZ9aZ6GWqv/Juv/jDEyCwgiV4jmCbjt6Xt5ppQdsxF6p5afnt
GGoK41T1mhQr/2YLd8ouVbp0ZJEzy8YDqKc2XdqRI7almsfOo+oEwwpe7NUjbImj
mHU/vC0CiaVmLGzmNR386kjI+lWmf8Jr6GsfPrQhgPh9fyyp62szpfOfjv2Xg9bt
5UzbfQz3f+SrTwQAhW/wZMOnlOfap0ckK7TdKUR3f4HyPQzNeaX8IDzHXcgpjSkW
bNsIFTcG8BwlQ+m2tligcwzfOknoZniYb2zxk4hNQ3M67YrEoP+sTqM=
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:41 2023 by rpki-client on console-ams.rpki-client.org